$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/352e38332e3231322e302f32342d3234203d3e20323134303235.roa File: 352e38332e3231322e302f32342d3234203d3e20323134303235.roa (raw, json) Hash identifier: x0giPlIxc83ofH/BXkrcaGWMgNLSxiPrteEeIoh8HxQ= Subject key identifier: F2:71:5E:6D:02:1F:36:7A:EB:AE:C7:75:8D:CA:76:C8:AD:05:17:B2 Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 3E693460E624302137EA3BA6286483A5FBB002E9 Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/352e38332e3231322e302f32342d3234203d3e20323134303235.roa Signing time: Sun 29 Mar 2026 07:23:31 +0000 ROA not before: Sun 29 Mar 2026 07:18:31 +0000 ROA not after: Sun 28 Mar 2027 07:23:31 +0000 asID: 214025 IP address blocks: 5.83.212.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 17 Apr 2026 12:22:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:69:34:60:e6:24:30:21:37:ea:3b:a6:28:64:83:a5:fb:b0:02:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: Mar 29 07:18:31 2026 GMT Not After : Mar 28 07:23:31 2027 GMT Subject: CN=F2715E6D021F367AEBAEC7758DCA76C8AD0517B2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:1a:64:eb:5c:57:98:2d:bd:96:a3:56:31:99: fb:3a:20:d2:f7:80:40:f2:55:a8:a0:2c:46:a5:4f: 34:b4:0f:4f:0b:db:ae:d7:e1:89:bf:8a:53:70:de: 5e:3c:3a:49:7f:66:d2:21:61:c8:1f:cb:99:53:57: 18:e1:99:f2:94:b4:2b:7b:45:a8:ae:04:5b:d9:de: dc:7f:5d:65:6c:42:88:49:f9:94:45:57:76:19:37: 8e:e9:c8:9a:86:56:2b:2b:0e:62:92:fb:03:be:aa: 9e:98:4e:1e:a7:5a:85:55:56:ff:92:45:0e:f0:67: c4:06:a9:2b:27:17:63:75:56:ee:a9:6d:61:cf:c7: 2d:b2:ce:ee:b0:4a:3a:de:96:dd:ab:c0:4e:53:44: 01:75:b9:f6:63:78:de:16:00:ac:80:09:8c:58:18: 6d:5b:16:a7:e3:ed:99:f2:ce:e7:9a:97:89:40:5e: 01:51:56:42:ea:bf:f8:f8:30:d0:74:f9:01:1f:64: f6:cc:78:b5:dc:85:c9:10:74:bf:10:7a:76:00:0d: 4a:6e:f6:c1:59:71:3b:90:38:60:8c:16:82:19:c5: 15:a6:eb:06:40:54:64:5e:58:0f:6c:07:9e:a7:f8: c5:a6:03:a0:bb:43:43:44:64:09:bd:fe:1a:ad:f1: 28:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:71:5E:6D:02:1F:36:7A:EB:AE:C7:75:8D:CA:76:C8:AD:05:17:B2 X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/352e38332e3231322e302f32342d3234203d3e20323134303235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.83.212.0/24 Signature Algorithm: sha256WithRSAEncryption 89:03:98:23:8b:d5:cf:96:57:b1:b1:0b:95:8e:59:74:80:90: b3:3e:de:e6:2b:d9:5c:7a:14:85:bd:a5:89:a5:56:bb:54:f1: 93:7a:ec:fa:89:a7:cc:47:b7:cd:df:43:c9:ea:1c:eb:5f:d6: 71:6f:49:42:12:89:0c:e4:01:75:42:50:cf:4f:ff:ea:91:bf: 21:e8:c1:86:0a:ca:ae:b2:c7:1b:4d:e5:82:fa:60:19:45:05: 91:32:e7:98:82:93:04:2d:38:61:dd:d8:4c:43:08:3e:d2:0e: 8d:84:fc:08:3d:01:a1:22:e5:ae:21:f7:6c:53:ae:2b:2c:d4: c4:8b:34:e4:48:c1:62:03:f9:37:9c:bb:52:7c:f7:22:6c:2a: 03:48:89:fd:d8:1f:eb:18:7d:c6:16:8b:49:27:95:9d:de:3c: 18:70:80:9b:8b:fe:07:aa:5c:0f:5b:a2:ad:2d:bc:62:7d:ff: 10:3a:45:90:23:a6:15:94:76:06:e1:fc:b1:40:06:66:90:98: cc:b7:93:77:8f:61:43:bf:95:0c:28:fa:4d:20:fd:fe:f5:11: 0d:4a:3c:6f:c2:93:77:64:73:ac:44:e7:b0:82:de:82:98:20: 2d:f9:42:00:4c:00:98:cd:19:52:c2:75:61:67:21:74:32:24: 2c:f6:e6:66 -----BEGIN CERTIFICATE----- MIIFVjCCBD6gAwIBAgIUPmk0YOYkMCE36jumKGSDpfuwAukwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNjAzMjkwNzE4MzFaFw0yNzAzMjgwNzIzMzFaMDMxMTAvBgNV BAMTKEYyNzE1RTZEMDIxRjM2N0FFQkFFQzc3NThEQ0E3NkM4QUQwNTE3QjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCUGmTrXFeYLb2Wo1Yxmfs6INL3 gEDyVaigLEalTzS0D08L267X4Ym/ilNw3l48Okl/ZtIhYcgfy5lTVxjhmfKUtCt7 RaiuBFvZ3tx/XWVsQohJ+ZRFV3YZN47pyJqGVisrDmKS+wO+qp6YTh6nWoVVVv+S RQ7wZ8QGqSsnF2N1Vu6pbWHPxy2yzu6wSjrelt2rwE5TRAF1ufZjeN4WAKyACYxY GG1bFqfj7Znyzueal4lAXgFRVkLqv/j4MNB0+QEfZPbMeLXchckQdL8QenYADUpu 9sFZcTuQOGCMFoIZxRWm6wZAVGReWA9sB56n+MWmA6C7Q0NEZAm9/hqt8Si7AgMB AAGjggJgMIICXDAdBgNVHQ4EFgQU8nFebQIfNnrrrsd1jcp2yK0FF7IwHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGiBggrBgEFBQcBCwSBlTCBkjCBjwYIKwYBBQUHMAuGgYJyc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9hNmYyMTQ3YS1kZThhLTQ0NDAtYmNh Mi02ZDhiN2M4NzZmZGEtMC8wLzM1MmUzODMzMmUzMjMxMzIyZTMwMmYzMjM0MmQz MjM0MjAzZDNlMjAzMjMxMzQzMDMyMzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAFU9QwDQYJKoZIhvcN AQELBQADggEBAIkDmCOL1c+WV7GxC5WOWXSAkLM+3uYr2Vx6FIW9pYmlVrtU8ZN6 7PqJp8xHt83fQ8nqHOtf1nFvSUISiQzkAXVCUM9P/+qRvyHowYYKyq6yxxtN5YL6 YBlFBZEy55iCkwQtOGHd2ExDCD7SDo2E/Ag9AaEi5a4h92xTriss1MSLNORIwWID +Tecu1J89yJsKgNIif3YH+sYfcYWi0knlZ3ePBhwgJuL/geqXA9boq0tvGJ9/xA6 RZAjphWUdgbh/LFABmaQmMy3k3ePYUO/lQwo+k0g/f71EQ1KPG/Ck3dkc6xE57CC 3oKYIC35QgBMAJjNGVLCdWFnIXQyJCz25mY= -----END CERTIFICATE-----Generated at Fri Apr 17 04:33:38 2026 by rpki-client